Common use of Snap Clause in Contracts

Snap. on may collect and process certain personally identifiable information belonging to Supplier and its employees, including without limitation, financial related information, date of birth, individual name, contact information, etc. (“Personal Data”), if such Personal Data is needed for the purposes stated below. The Personal Data may be stored on servers located in the European Union and in the United States or another server outside of the EEA. Supplier agrees to only provide Personal Data for which it has the right to provide to Snap-on and, if required by law, has the necessary consent to provide such Personal Data to Snap-on. Snap-on will only collect and use such Personal Data for the following purposes: (i) to perform and transact business under this Agreement; and (ii) manage compliance programs in accordance with applicable laws, including without limitation compliance with Anti-Corruption Laws and product regulatory compliance laws, rules, orders and regulations. As between Snap-on and Supplier, all Personal Data supplied by Supplier will be the property of Supplier and will only be retained by Snap-on until Snap-on no longer needs it in order for the purposes outlined within this section. Snap-on may provide Supplier with certain Personal Data belonging to Snap-on, its employees and its customers, if such Personal Data is needed for the purposes of performing under this Agreement. Snap-on agrees to only provide Personal Data for which it has the right to provide to Supplier and, if required by law, has the necessary consent to provide such Personal Data to Supplier. Supplier will only collect, use, retain, or disclose personal information for the purposes of supplying Product to Snap-on in accordance with any instructions provided by Snap-on (“Contracted Business Purpose”). The Parties will comply with and remain in compliance with: (i) all applicable Privacy and Data Security Laws, which means all privacy, security, data protection and communications laws, rules and regulations of any applicable jurisdiction, including, without limitation, the United States and Europe and each jurisdiction where a data subject resides, that apply to the Personal Data, and all then-current industry standards, guidelines and practices with respect to privacy, security, data protection, including the collection, processing, storage, protection and disclosure of Personal Data; (ii) the applicable data security and privacy policies of Supplier, and (iii) the applicable data security and privacy policies of Snap-on that are provided by Snap-on to Supplier from time to time. Supplier will not collect, use, retain, disclose, sell, or otherwise make personal information available for Supplier's own commercial purposes or in a way that does not comply with the California Consumer Privacy Act of 2018, as amended (Cal. Civ. Code §§ 1798.100 to 1798.199), and any related regulations or guidance provided by the California Attorney General (“CCPA”). Supplier certifies that it understands this Agreement's and the CCPA's restrictions and prohibitions on selling personal information and retaining, using, or disclosing personal information outside of the parties' direct business relationship, and it will comply with them.